Update npm - all minor and patch updates (#405) #391
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Release | |
on: | |
push: | |
branches: ['main'] | |
jobs: | |
preconditions: | |
runs-on: ubuntu-latest | |
outputs: | |
repo_name: ${{ steps.repo_ids.outputs.REPO_NAME }} | |
org_name: ${{ steps.repo_ids.outputs.ORG_NAME }} | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
with: | |
fetch-depth: 0 | |
- name: Check Github token | |
run: | | |
if [ -z "${{ secrets.GITHUB_TOKEN }}"]; then | |
echo "Must provide a GITHUB_TOKEN secret in order to run release workflow" | |
exit 1 | |
fi | |
- name: Check Dockerhub token | |
run: | | |
if [ -z "${{ secrets.SQNC_DOCKERHUB_TOKEN }}"]; then | |
echo "Must provide a SQNC_DOCKERHUB_TOKEN secret in order to run release workflow" | |
exit 1 | |
fi | |
- name: Get repository identifiers | |
id: repo_ids | |
run: | | |
REPO_NAME=$(echo "${{ github.event.repository.name }}" | tr '[:upper:]' '[:lower:]') | |
ORG_NAME=$(echo "${{ github.event.repository.owner.name }}" | tr '[:upper:]' '[:lower:]') | |
echo "REPO_NAME=$REPO_NAME" >> $GITHUB_OUTPUT | |
echo "ORG_NAME=$ORG_NAME" >> $GITHUB_OUTPUT | |
static-checks: | |
name: Run Static Analysis Checks | |
strategy: | |
fail-fast: false | |
matrix: | |
command: [lint, depcheck, build] | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-node@v4 | |
with: | |
node-version: 20.x | |
- name: Cache Node.js modules | |
uses: actions/cache@v4 | |
with: | |
path: ~/.npm # npm cache files are stored in `~/.npm` on Linux/macOS | |
key: ${{ runner.OS }}-node-${{ hashFiles('**/package-lock.json') }} | |
restore-keys: | | |
${{ runner.OS }}-node- | |
${{ runner.OS }}- | |
- name: Install Packages | |
run: npm ci | |
- name: ${{ matrix.command }} | |
run: npm run ${{ matrix.command }} | |
tests: | |
name: Run tests | |
runs-on: ubuntu-latest | |
needs: [preconditions] | |
steps: | |
- uses: actions/checkout@v4 | |
- uses: actions/setup-node@master | |
with: | |
node-version: 20.x | |
- name: Use npm latest | |
run: npm install -g npm@latest | |
- name: Cache Node.js modules | |
uses: actions/cache@v4 | |
with: | |
path: ~/.npm # npm cache files are stored in `~/.npm` on Linux/macOS | |
key: ${{ runner.OS }}-node-${{ hashFiles('**/package-lock.json') }} | |
restore-keys: | | |
${{ runner.OS }}-node- | |
${{ runner.OS }}- | |
- name: Install Packages | |
run: npm ci | |
- name: Tsoa build | |
run: npm run tsoa:build | |
- name: Setup dependencies | |
run: docker compose up -d | |
- name: Sleep | |
uses: kibertoad/[email protected] | |
with: | |
time: '30s' | |
- name: Initialise DB | |
run: npm run db:migrate | |
- name: Run tests | |
run: npm run test | |
check-version: | |
name: 'Check version' | |
runs-on: ubuntu-latest | |
outputs: | |
is_new_version: ${{ steps.get_version.outputs.IS_NEW_VERSION }} | |
version: ${{ steps.get_version.outputs.VERSION }} | |
build_date: ${{ steps.get_version.outputs.BUILD_DATE }} | |
is_prerelease: ${{ steps.get_version.outputs.IS_PRERELEASE }} | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Check version | |
id: get_version | |
uses: digicatapult/check-version@v1 | |
with: | |
token: ${{ secrets.GITHUB_TOKEN }} | |
publish: | |
name: 'Publish package' | |
needs: [preconditions, static-checks, tests, check-version] | |
runs-on: ubuntu-latest | |
if: ${{ needs.check-version.outputs.is_new_version == 'true' }} | |
steps: | |
- uses: actions/checkout@v4 | |
# Docker build | |
- name: Setup QEMU | |
uses: docker/setup-qemu-action@v3 | |
with: | |
platforms: all | |
- name: Setup Docker Buildx | |
id: buildx | |
uses: docker/setup-buildx-action@v3 | |
with: | |
buildkitd-flags: '--debug' | |
- name: Login to GitHub Container Registry | |
uses: docker/login-action@v3 | |
with: | |
registry: ghcr.io | |
username: $GITHUB_ACTOR | |
password: ${{ secrets.GITHUB_TOKEN }} | |
- name: Login to Dockerhub Registry | |
uses: docker/login-action@v3 | |
with: | |
username: ${{ secrets.SQNC_DOCKERHUB_USERNAME }} | |
password: ${{ secrets.SQNC_DOCKERHUB_TOKEN }} | |
- name: Publish multi-arch image | |
uses: docker/build-push-action@v6 | |
with: | |
push: true | |
builder: ${{ steps.buildx.outputs.name }} | |
context: . | |
file: ./Dockerfile | |
platforms: linux/amd64, linux/arm64 | |
tags: | | |
ghcr.io/${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:${{ needs.check-version.outputs.version }} | |
${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:${{ needs.check-version.outputs.version }} | |
ghcr.io/${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:latest | |
${{ needs.preconditions.outputs.org_name }}/${{ needs.preconditions.outputs.repo_name }}:latest | |
labels: | | |
org.opencontainers.image.title=${{ needs.preconditions.outputs.repo_name }} | |
org.opencontainers.image.description=${{ github.event.repository.description }} | |
org.opencontainers.image.source=${{ github.event.repository.html_url }} | |
org.opencontainers.image.url=${{ github.event.repository.html_url }} | |
org.opencontainers.image.revision=${{ github.sha }} | |
org.opencontainers.image.version=${{ needs.check-version.outputs.version }} | |
org.opencontainers.image.created=${{ needs.check-version.outputs.build_date }} | |
# Build github release | |
- name: Build release version | |
uses: softprops/action-gh-release@v2 | |
with: | |
token: '${{ secrets.GITHUB_TOKEN }}' | |
tag_name: ${{ needs.check-version.outputs.version }} | |
prerelease: false | |
name: ${{ needs.check-version.outputs.version }} | |
generate_release_notes: true | |
- name: Delete release latest | |
uses: actions/github-script@v7 | |
with: | |
github-token: ${{secrets.GITHUB_TOKEN}} | |
script: | | |
const { owner, repo } = context.repo | |
try { | |
await github.rest.git.deleteRef({ owner, repo, ref: 'tags/latest' }) | |
} | |
catch (err) { | |
if (err.status !== 422) throw err | |
} | |
- name: Build release latest | |
uses: softprops/action-gh-release@v2 | |
with: | |
token: '${{ secrets.GITHUB_TOKEN }}' | |
tag_name: latest | |
prerelease: false | |
name: Latest ${{ needs.check-version.outputs.version }} | |
generate_release_notes: true |